CVE-2016-4315 (carbon)

CVE-2016-4315 (carbon)

Cross-site request forgery (CSRF) vulnerability in WSO2 Carbon 4.4.5 allows remote attackers to hijack the authentication of privileged users for requests that shutdown a server via a shutdown action to server-admin/proxy_ajaxprocessor.jsp.

Source: CVE-2016-4315 (carbon)